Hello,
I am a new learner on mikrotik. I set a rule for some clients that they can’t access facebook-Youtube for 8 am to 2 pm. when I set the rule on advance tab on firewall rule window and save/apply for the rule it shows “Inactive Time” and turns red mark. If I remove the time from the rule its working fine for 24 hours. Is anyone can help me to solve the problem? Here I am attaching the screen shot which I have taken from the winbox window.
Thanks
Kawsar
If the rule start 08:00 AM and your clock are 07:06AM, OBVIOUSLY the rule are inactive…
The comment is indicating that the rule is currently inactive because the time on the router doesn’t fall within the time interval that the rule is supposed to be active.
Also, with time-based rules, you need to make sure that the clock on the router is accurate – you need to check both the Time Zone within System > Clock, and either manually set the time there, or use System > SNTP Client to sync with a time server.
just dont want to start new topic with the same question.
how to get firewall rules working from 22:00:00 (10pm) till 07:00:00 (7am of netx day)?
I can`t set 22:00:00-07:00:00 couse system says “error start time bigest than end time”
Thanx!
@NHBFan, you can reverse the rule by creating a drop rule for 06:59:00 - 21:59:00. You are still doing the same thing. Thanks
Hello all,
Can someone share the firewall rules that applied to such settings.
Mine I need to block internet connectivity in the network (No internet browsing from 7:00am - 16:00) but allow sharing of files in the network for every time of the day
Here’s a real life example from my friend’s router. He’s blocking his daughter’s phone from the internet according to the day and time in the comments below.
Here it’s blocking by MAC address but that’s easily changed to IP address or your subnet.
Current time when I copied this is Friday so none of the rules are active hence the “# inactive time” which displays as red colour in Winbox. She’s allowed to use the internet whole of Friday.
# inactive time
add action=drop chain=forward comment="Block 0000 to 1830. Mon-Thu" src-mac-address=AC:38:70:14:B4:50 \
time=0s-18h30m,mon,tue,wed,thu
# inactive time
add action=drop chain=forward comment="Block 0000 to 0700. Sunday" src-mac-address=AC:38:70:14:B4:50 \
time=0s-7h,sun
# inactive time
add action=drop chain=forward comment="Block 2100 to 2230. Mon-Thu, Sun" src-mac-address=AC:38:70:14:B4:50 \
time=21h-22h30m,sun,mon,tue,wed,thu
# inactive time
add action=drop chain=forward comment="Block 2300 to 0000. Mon-Thu, Sun" src-mac-address=AC:38:70:14:B4:50 \
time=23h-23h59m59s,sun,mon,tue,wed,thu
Tried you rule, it worked for me but I want a reverse of the above configurations, where we want to allow access only to 3 systems on the network with their src-mac address, but block the internet for all other on the network. Their server will have internet access freely, the admin, the IT guy and the manager, while others will have their systems restricted by say from 16:00 till 23:00.
Thanks